During a breach review, you collect threat-intel notes stating that the intruders gained an initial foothold, quietly escalated privileges, and then maintained covert access for six months while periodically exfiltrating source-code repositories that match their country's strategic technology plan. Which single observation most clearly indicates the incident should be classified as an APT rather than a commodity attack?
Initial compromise was achieved through a publicly available exploit for an unpatched SMBv1 vulnerability.
Hundreds of look-alike domains were registered and used in a spear-phishing campaign against senior executives.
The adversary kept undetected access for months to quietly exfiltrate R&D data that aligns with a nation-state's strategic objectives.
The intruders deployed ransomware within hours of entry and demanded payment in cryptocurrency.
The defining element of an advanced persistent threat is persistence toward a strategic objective. Extended, covert residence in the victim network-often to conduct espionage that supports national or long-term goals-distinguishes APT groups from opportunistic criminals. While spear-phishing, domain registration, or the use of known exploits can appear in many attacks, and rapid ransomware deployment actually contradicts the notion of stealth, evidence of months-long, low-profile access to steal data aligned with state interests is the hallmark of an APT operation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is an APT in cybersecurity?
Open an interactive chat with Bash
How does an APT differ from a commodity attack?
Open an interactive chat with Bash
Why is persistence important in an APT?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
System Hacking Phases and Attack Techniques
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .